Abstract: A vehicle-to-everything (V2X) communication-based electronic toll collection system (ETCS) according to an embodiment of the present invention includes at least one roadside unit (RSU), a token issuer checking a de-identified token of a vehicle by communicating with an on-board unit (OBU) of the vehicle via the at least one roadside unit, and a clearing house communicating with the token issuer and charging a toll to a driver/owner of the vehicle. The token issuer generates toll information of the vehicle based on the de-identified token of the vehicle and location information of the at least one roadside unit involved in checking the de-identified token.

Abstract: A device for secure and automated enrollment-certificate bootstrapping on keys and certificates for a vehicle to everything (V2X) environment of a V2X end entity in a security credential management system (SCMS) for V2X communication, the device comprising: a processor; and a memory configured to store at least one instruction to be performed by the processor, the at least one instruction is configured to instruct the processor to perform steps of: by a secure bootstrapping service (SBS) agent, checking, for an SSB server, configuration information; by the SBS agent, making a request for bootstrapping data to the SBS server; and by the SBS agent, installing the bootstrapping data in the SBS server.

Abstract: Provided are a driving negotiation method and apparatus for supporting stability against a blind spot, an unexpected situation, etc. and a rapid judgment and response of an autonomous vehicle in various driving environments. The driving negotiation apparatus includes a wireless communication module configured to support vehicle to everything (V2X) communication and at least one processor connected to the wireless communication module. The at least one processor receives a cooperative request message from a first vehicle, broadcasts a cooperative request message and additional information required for a negotiation to surrounding vehicles, receives a cooperative response message from at least one second vehicle among the surrounding vehicles, and transmits a message indicating that the negotiation is possible or impossible to the first vehicle on the basis of the cooperative response message.

Abstract: A message hop-based communication method of guaranteeing real-time communication in a vehicle communication environment may comprise: receiving, by a first on-board unit (OBU) of a first vehicle, a first message including a message frame (MF) for probe vehicle data (PVD) from a road side unit (RSU); and transmitting a second message, including an MF for a basic safety message (BSM), to a second OBU of a second vehicle, the second message corresponding to the first message, wherein the PVD and the BSM each comprise a data frame for a hopping request.

Abstract: A method of extending message nodes of an Open Mobile Alliance (OMA)-Device Management (DM) protocol, which is performed by a server to improve efficiency of a vehicle over-the air (OTA) update, may comprise: receiving a package including vehicle device information (DevInfo) from a client of a vehicle; and checking an update state of software (SW) installed on the client on the basis of information having a field for defining information on a vehicle registration district, a field for defining information on a production year of the vehicle, and an SW field for defining an SW expansion which are included in the DevInfo.

Abstract: Disclosed is a user authentication-based packet classification method and apparatus for providing differentiated security services in a ship network. A user authentication-based packet classification method includes receiving an authorization code request message from a user terminal including a client, authenticating and authorizing a user of the client based on the authorization code request message, transmitting an authorization code response message to the user terminal in response to the authorization code request message, receiving an access token request message from the user terminal based on the authorization code response message, and transmitting an access token response message including an access token to the user terminal in response to the access token request message.

Abstract: A vehicle-to-everything (V2X) communication-based electronic toll collection system (ETCS) according to an embodiment of the present invention includes at least one roadside unit (RSU), a token issuer checking a de-identified token of a vehicle by communicating with an on-board unit (OBU) of the vehicle via the at least one roadside unit, and a clearing house communicating with the token issuer and charging a toll to a driver/owner of the vehicle. The token issuer generates toll information of the vehicle based on the de-identified token of the vehicle and location information of the at least one roadside unit involved in checking the de-identified token.

Abstract: An encryption key management method includes: receiving a data registration request from a supplier terminal, determining a data identifier associated with the content data, encrypting a master key with a public key of the supplier terminal, and providing the supplier terminal with the master key encrypted with the public key of the supplier terminal, the data identifier, and a key update count value; receiving a subscription application related to the data identifier from a first subscriber terminal, encrypting the master key with a public key of the first subscriber terminal, and providing the first subscriber terminal with the master key encrypted with the public key of the first subscriber terminal and the key update count value; receiving encrypted content data encrypted with the symmetric key and a hash for the content data from the supplier terminal; and transmitting the encrypted content data and the hash to the first subscriber terminal.

Abstract: Disclosed is a method and apparatus for detecting anomalies in a system log on the basis of self-supervised learning, using a language model. The method comprises performing preprocessing on the system log, generating a normal token sequence having a preset length by concatenating tokenized log lines of the system log, generating an abnormal token sequence using the normal token sequence, calculating an anomaly score for a determination target token sequence using a sentence classification model, and determining the token sequence as an abnormal system log when the calculated anomaly score is greater than a threshold value.

Abstract: A method of distributedly storing data in a system comprising a plurality of edge nodes communicatively coupled to an end device and a central cloud. The method includes: receiving, by a first edge node, data transmitted by the end device; assigning, by the first edge node, a data tag to received data according to attributes of the received data and duplicating the received data to generate a tagged data copy; and transmitting, by the first edge node, the tagged data copy to at least one second edge node determined by a data distribution policy determined by the central cloud directly or through the central cloud, so that the at least one second edge node store the tagged data copy in a storage.

Abstract: A Merkle tree-based data management method may comprise: aligning data into two-dimensional square matrix; calculating a hash value of each node of the two-dimensional square matrix; calculating hash values of each row of the two-dimensional square matrix; generating an additional column with nodes having the hash values of each row; calculating hash values of each column of the two-dimensional square matrix; generating an additional row with nodes having hash values of each column; and calculating a Merkle root by concatenating the hash values of the additional column and the hash values of the additional row.

Abstract: A method of detecting an anomaly of a road side unit, which is performed by an anomaly detecting apparatus interworking with one or more road side units, may comprise: receiving traffic data from each of the one or more road side units; performing grouping on the one or more road side units based on the traffic data; generating input data of an artificial neural network based on a result of the performing of the grouping; generating output data of the artificial neural network based on the input data; and detecting an anomaly of each of the one or more road side units based on the output data.

Abstract: A data-sharing method, performed by a processor in a data-sharing apparatus including a blockchain ad a data subscription platform server, may comprise: registering, by the data subscription platform server, a data supply plan in the blockchain according to a request of a data supplier; registering, by the data subscription platform server, content data supplied from the data supplier; managing, by the data subscription platform server, data subscription rights of a data subscriber by using the blockchain according to a subscription request of the data subscriber; and supplying, by the data subscription platform server, the content data to the data subscriber.

Abstract: A method for identifying autonomous driving vehicles, performed by an autonomous driving vehicle identification apparatus installed in a roadside unit (RSU), may comprise: receiving, from a vehicle entering a vehicle-to-infrastructure (V2I) communication area of the RSU, a probe vehicle data (PVD) message; determining whether a data element indicating an autonomous driving level is present in the PVD message; and in response to determining that the data element does not exist in the PVD message, identifying the vehicle transmitting the PVD message as a normal vehicle.

Abstract: An encryption key management method includes: receiving a data registration request from a supplier terminal, determining a data identifier associated with the content data, encrypting a master key with a public key of the supplier terminal, and providing the supplier terminal with the master key encrypted with the public key of the supplier terminal, the data identifier, and a key update count value; receiving a subscription application related to the data identifier from a first subscriber terminal, encrypting the master key with a public key of the first subscriber terminal, and providing the first subscriber terminal with the master key encrypted with the public key of the first subscriber terminal and the key update count value; receiving encrypted content data encrypted with the symmetric key and a hash for the content data from the supplier terminal; and transmitting the encrypted content data and the hash to the first subscriber terminal.

Abstract: Provided are a driving negotiation method and apparatus for supporting stability against a blind spot, an unexpected situation, etc. and a rapid judgment and response of an autonomous vehicle in various driving environments. The driving negotiation apparatus includes a wireless communication module configured to support vehicle to everything (V2X) communication and at least one processor connected to the wireless communication module. The at least one processor receives a cooperative request message from a first vehicle, broadcasts a cooperative request message and additional information required for a negotiation to surrounding vehicles, receives a cooperative response message from at least one second vehicle among the surrounding vehicles, and transmits a message indicating that the negotiation is possible or impossible to the first vehicle on the basis of the cooperative response message.

Abstract: A blockchain-based certification audit data sharing and integrity verification system includes at least one user equipment configured to participate in a blockchain-based platform and mounted with a user authentication application; at least one certification agency server configured to participate in the blockchain-based platform and to provide authentication data composed of user data for authenticity verification, certificate or completion certificate data, and certification audit data; at least one blockchain-based platform server configured to record an authentication transaction in a block; and a blockchain-based certification audit data sharing and integrity verification device configured to: generate audit result data by auditing forgery verification of a document requested by the user authentication application of the user equipment using the authentication data of the at least one certification agency server in interlock with the blockchain-based platform server, and share the generated audit result

Abstract: An intrusion detection method for a CAN, performed by a processor, may comprise: collecting CAN IDs from the CAN in an order of occurrence; generating a sequence of a predetermined number L of CAN IDs from the collected CAN IDs, L being an integer greater than or equal to 1; and inputting the sequence into a bi-directional GPT2 network and calculating a value of a loss function corresponding to the sequence, wherein when a number of allowed CAN IDs is K, the allowed CAN IDs in the sequence are sorted in an order of magnitude and converted into values 0 to K?1, CAN IDs that are not allowed in the sequence are converted to K, the sequence is input to the bidirectional GPT2 network, and K is an integer equal to or greater than 1.

Abstract: Provided is a method for detecting a driver's abnormalities based on a CAN (Controller Area Network) bus network communicating with an ECU (Electronic Control Unit) of a vehicle. The method may include: acquiring a CAN bus signal related to an operation of the vehicle from the CAN bus network; extracting a detection vector from the CAN bus signal using an auto encoder; and detecting a driver's abnormality based on the detection vector.

Abstract: A device for secure and automated enrollment-certificate bootstrapping on keys and certificates for a vehicle to everything (V2X) environment of a V2X end entity in a security credential management system (SCMS) for V2X communication, the device comprising: a processor; and a memory configured to store at least one instruction to be performed by the processor, the at least one instruction is configured to instruct the processor to perform steps of: by a secure bootstrapping service (SBS) agent, checking, for an SSB server, configuration information; by the SBS agent, making a request for bootstrapping data to the SBS server; and by the SBS agent, installing the bootstrapping data in the SBS server.